Skip to main content
neggly
neggly
New Member
July 22, 2018
Solved

FortiGate Inter-VLAN Routing Issues

  • July 22, 2018
  • 1 reply
  • 40059 views

I have a Fortigate 60D running 5.2.4 that I am trying to get the FGT to act like a router on a stick paired with a Cisco 2960x switch. However, I am having a very hard time to get the inter-vlan routing to work. Here is my current configuration.

[ul]
  • VLANS 10,30,40,50 are created on both the FGT and Cisco switch. (These show up as connected routes)
  • DHCP is configured for VLANs 40 and 50 (This works)
  • I have an "ALLOW ALL" policy in place to eliminate policies as a problem
  • Switch has a trunk port that allows the VLANs into that trunk
  • Internal interface has no IP address assigned. Only the VLANS have IP addresses[/ul]

    I have been looking at this for quite a while and am not sure how to do a router-on-a-stick configuration on a FGT. Do you guys know of a good guide or some helpful tips on something that I may have overlooked?

    • Best answer by Nicholas_Doropoulos

    Hello,

     

    Is NAT enabled on the firewall policies that match the relevant traffic?

     

    Also, have you configured a forward domain?

     

    Thanks.

    1 reply

    Nicholas_Doropoulos
    Nicholas_DoropoulosAnswer
    New Member
    July 22, 2018

    Hello,

     

    Is NAT enabled on the firewall policies that match the relevant traffic?

     

    Also, have you configured a forward domain?

     

    Thanks.

    neggly
    negglyAuthor
    New Member
    July 22, 2018

    I have turned NAT off.  I am not sure what a forward domain is.  I did not see that option in the configuration on the VLANs or the interface.

    Terms & ConditionsAccessibility statement